Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-0418HistoryMay 24, 2011 - 11:55 p.m.
CVE-2011-0418
2011-05-2423:55:00
Debian Security Bug Tracker
security-tracker.debian.org
12
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.04 Low
EPSS
Percentile
92.1%
The glob implementation in Pure-FTPd before 1.0.32, and in libc in NetBSD 5.1, does not properly expand expressions containing curly brackets, which allows remote authenticated users to cause a denial of service (memory consumption) via a crafted FTP STAT command.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | pure-ftpd | < 1.0.32-1 | pure-ftpd_1.0.32-1_all.deb |
| Debian | 11 | all | pure-ftpd | < 1.0.32-1 | pure-ftpd_1.0.32-1_all.deb |
| Debian | 10 | all | pure-ftpd | < 1.0.32-1 | pure-ftpd_1.0.32-1_all.deb |
| Debian | 999 | all | pure-ftpd | < 1.0.32-1 | pure-ftpd_1.0.32-1_all.deb |
| Debian | 13 | all | pure-ftpd | < 1.0.32-1 | pure-ftpd_1.0.32-1_all.deb |
Related
openvas
openvas
Mandriva Update for pure-ftpd MDVSA-2011:094 (pure-ftpd)
2011-05-23 00:00:00
Fedora Update for pure-ftpd FEDORA-2011-7374
2011-06-24 00:00:00
Fedora Update for pure-ftpd FEDORA-2011-7374
2011-06-24 00:00:00
prion
prion
Command injection
2011-05-24 23:55:00
Integer overflow
2011-05-24 23:55:00
nessus
nessus
Mandriva Linux Security Advisory : pure-ftpd (MDVSA-2011:094)
2011-05-20 00:00:00
Fedora 14 : pure-ftpd-1.0.32-1.fc14 (2011-7374)
2011-06-22 00:00:00
Fedora 15 : pure-ftpd-1.0.32-1.fc15 (2011-7434)
2011-05-31 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: pure-ftpd-1.0.32-1.fc14
2011-06-21 17:38:38
[SECURITY] Fedora 15 Update: pure-ftpd-1.0.32-1.fc15
2011-05-30 22:34:29
ubuntucve
ubuntucve
CVE-2011-0418
2011-05-24 00:00:00
cve
cve
CVE-2011-0418
2011-05-24 23:55:00
CVE-2011-2168
2011-05-24 23:55:00
securityvulns
securityvulns
[ MDVSA-2011:094 ] pure-ftpd
2011-05-21 00:00:00
MacOSX 10.8.3 ftpd Remote Resource Exhaustion
2013-04-15 00:00:00
libc glob() resources exhaustion
2013-04-15 00:00:00
cvelist
cvelist
CVE-2011-0418
2011-05-24 23:00:00
gentoo
gentoo
Pure-FTPd: Multiple vulnerabilities
2011-10-26 00:00:00
freebsd
freebsd
pureftpd -- multiple vulnerabilities
2011-04-01 00:00:00
exploitpack
exploitpack
FreeBSD 9.1 - ftpd Remote Denial of Service
2013-02-05 00:00:00
seebug
seebug
FreeBSD 9.1 ftpd Remote Denial of Service
2014-07-01 00:00:00
exploitdb
exploitdb
FreeBSD 9.1 - 'ftpd' Remote Denial of Service
2013-02-05 00:00:00
packetstorm
packetstorm
Multiple Vendors libc/glob(3) GLOB_BRACE|GLOB_LIMIT Memory Exhaustion
2011-05-03 00:00:00
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.04 Low
EPSS
Percentile
92.1%
Related for DEBIANCVE:CVE-2011-0418